rybal06
rybal06
# Description This is similar to https://github.com/Azure/azure-powershell/issues/10550 possibly. I am using a service principal to manage IAM access to azure resources for which that service account is the owner. Get-AzRoleAssignment...
Modules do not work for non-root users when umask values are set to be more restrictive than default
# Steps to reproduce 1. Edit all default umask entries inside of /etc/bashrc & /etc/profile to 077. Re-source files, reboot host, or log out/log in to refresh user profile. 2....
C2S is looking for the following: "The file permissions for all log files written by rsyslog should be set to 600, or more restrictive" CIS 2.1.1 is looking for: 4.2.4...
#### Details of the scenario you tried and the problem that is occurring We are utilizing this Azure "best practice" architecture at scale with dozens of resource types without any...
**Describe the issue** In testing secret scanning within Terraform files, I am left wanting more checks. I went through the repo and documentation and didn't find an easy way to...
**Current behavior** Apologies if I missed something in the documentation, I tried using a combination of edns-client-string and edns-client-string-opcode but was not able to find a way to send data...
**Describe the bug** All TLS policies in this repo are denying TLS 1.3 from being used. **Steps to reproduce** 1. Apply any of the TLS deny policies from this repo...
**Describe the bug** The policy checks for the source address to be * or Internet, but doesn't check for 0.0.0.0/0. Per "0.0.0.0/0 in the Source and Destination columns represents all...